OpenSSL Tutorial Video-11 | CMS using OpenSSL

แชร์
ฝัง
  • เผยแพร่เมื่อ 4 ธ.ค. 2024

ความคิดเห็น • 10

  • @kohait00
    @kohait00 10 หลายเดือนก่อน

    This one helped me incredibly, thanks

    • @CyberHashira
      @CyberHashira  10 หลายเดือนก่อน

      You're welcome, I'm glad it helped you!

  • @navnisch1590
    @navnisch1590 วันที่ผ่านมา +2

    Nice video... just one question... you mentioned that when the openssl cms -encrypt command is run without entering any secret key, then a random key is generated at run time for encrypting the message using the chosen cipher, how does the recipient learn about this random key in order to be able to successfully decrypt the message content ?

    • @CyberHashira
      @CyberHashira  21 ชั่วโมงที่ผ่านมา

      That's what envelop is all about. Secret key used for encrypting the message is also encrypted and put in the envelop along with the encrypted message. Recipient's private key is used to decrypt the secret key.. and if successful, the secret key decrypts the message.

  • @negative-example
    @negative-example หลายเดือนก่อน +1

    For encryption, there's a great feature: you can use multiple -recip arguments, each with its own certificate. This means that anyone with the corresponding private key can decrypt the file. Imagine you're encrypting backups (because you're smart and store them with a third party, but don’t trust them, so you encrypt the backups). Now, what if one of the people managing the encryption leaves, and you don’t have their key? By encrypting with multiple certificates (each belonging to a different person), any one of them can decrypt the file.
    Technically, the file is encrypted using a single random key (which is relatively short, just a few bytes), but this key is attached to the file multiple times-each version encrypted with a different public key from the corresponding certificates. So, someone whose certificate was used for encryption can decrypt one of the encrypted keys, and then OpenSSL will use that key to decrypt the actual data.

    • @CyberHashira
      @CyberHashira  หลายเดือนก่อน

      Very useful comment, Thanks for sharing!

  • @georgewang8896
    @georgewang8896 ปีที่แล้ว +1

    Thanks for tutorial.

  • @jaafarbalaghi9012
    @jaafarbalaghi9012 9 หลายเดือนก่อน

    Thanks a lot . Very good course.

    • @CyberHashira
      @CyberHashira  9 หลายเดือนก่อน

      You're welcome!